Abstract
Software can be found in a lot of different infrastructures in our daily life e.g. mobile phones, cars, or ticket machines. Due to always increasing requirements or failures in programs, updates are needed at all times and mean a great cost and time advantage. Not always can the technical possibility to download software components be realized right away because various security issues or legal restraints have to be taken into account. This paper introduces a security architecture for regulated software download that is performed in the area of measuring instruments but can also be applied for other infrastructures. Therefore at first the legal requirements in which the software download is performed – here the liberalized energy market - is introduced. Furthermore different security requirements that are necessary to connect the technical and legal needs are presented. The analysis of the legal situation, the participants, resources, and threads draws a total picture of the system. Starting from these conclusions an infrastructure that supports the different security aspects will be presented.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Similar content being viewed by others
References
Gesetz über das Mess- und Eichwesen (Eichgesetz) vom 08. Februar 2007. BGBl. I 2007, S. 58ff
WELMEC - European cooperation in legal metrology. WELMEC 7.1 Issue 2. Informative Document. Development of Software Requirements (May 2005), Available at: http://www.welmec.org/publications/7-1.pdf
Directive 2004/22/EC of the European Parliament and of the Council of 31 March 2004 on measuring instruments OJ L 135 30.04.2004, pp. 1–80 (2004)
WELMEC – European cooperation in legal metrology. More Information is available at: http://www.welmec.org
Directive 96/92/EC of the European Parliament and of the Council of 19 December 1996 concerning common rules for the international market in electricity OJ L 27, 30.01.1997, pp. 20–29 (1996)
Gesetz über die Elektrizitäts- und Gasversorgung (Energiewirtschaftsgesetz - EnWG) vom 24. April 1998 BGBl. I 1998, S. 760ff (1998)
Directive 98/30/EC of the European Parliament and of the Council of 22 June 1998 concerning common rules for the international market in natural gas OJ L 2004, 21.07.1998, pp. 1–12 (1998)
Directive 2003/54/EC of the European Parliament and of the Council of 26 June 2003 concerning common rules for the international market in electricity and repealing Directive 96/92/EC OJ L 176, 15.07.2003, pp. 37–56 (2003)
Gesetz über die Elektrizitäts- und Gasversorgung (Energiewirtschaftsgesetz - EnWG) vom 20. Mai 2003 BGBl. I 2003, S. 686ff (2003)
Gesetz über die Elektrizitäts- und Gasversorgung (Energiewirtschaftsgesetz - EnWG) v. 07. Juli 2005 BGBl. I 2005, S. 1970ff (2005)
Eichordnung – EO v. 08. Februar 2007 BGBl. I 2007, S. 70ff (2007)
WELMEC - European cooperation in legal metrology. WELMEC 2.3 Issue 3. Guide for Examining Software (Non-automatic Weighing Instruments) (May 2005), Available at: http://www.welmec.org/publications/2-3.pdf
WELMEC - European cooperation in legal metrology. WELMEC 7.2 Issue 1. Software Guide (Measuring Instruments Directive 2004/22/EC) (May 2005), Available at: http://www.welmec.org/publications/7-2en.pdf
Freier, A., Karlton, P., Kocher, P. (Transport Layer Security Working Group): The SSL Protocol Version 3.0. Netscape Communications (November 1996), Available at: http://wp.netscape.com/eng/ssl3/
Dierks, T., Rescorla, E. (Network Working Group): The Transport Layer Security (TLS)Protocol Version 1.1. (April 2006), Available at: http://www.ietf.org/rfc/rfc4346.txt
Author information
Authors and Affiliations
Editor information
Rights and permissions
Copyright information
© 2007 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Hick, S., Ruland, C. (2007). Security Aspects for Secure Download of Regulated Software. In: Lambrinoudakis, C., Pernul, G., Tjoa, A.M. (eds) Trust, Privacy and Security in Digital Business. TrustBus 2007. Lecture Notes in Computer Science, vol 4657. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-74409-2_24
Download citation
DOI: https://doi.org/10.1007/978-3-540-74409-2_24
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-74408-5
Online ISBN: 978-3-540-74409-2
eBook Packages: Computer ScienceComputer Science (R0)